d3c8d40582410409004efacb41fd70460c0d48e8e1d5937dab27b8b44e8bcb45 | Triage

Sharing

General

Target

8bbce182e601095ae56e42fa1e104940_JaffaCakes118
Size

1017KB
Sample

240811-ylt1tsyhqa
MD5

8bbce182e601095ae56e42fa1e104940
SHA1

38283839f1ccd899918d03be5637580f2dc549af
SHA256

d3c8d40582410409004efacb41fd70460c0d48e8e1d5937dab27b8b44e8bcb45
SHA512

1c1cb26c678eb079be2be3107bb4239a24221ca93aaddf7744b5db13803ecf928cd4b7d55665f950c2b1c2f347271397f469a1c84836df40bb18682af2ace0ab
SSDEEP

24576:kVCS+EOon0k78H8txLRByuY5bAJsU2O5sQ:kV3+I78H8jdMuYmsHws

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  8bbce182e601095ae56e42fa1e104940_JaffaCakes118
- Size
  
  1017KB
- MD5
  
  8bbce182e601095ae56e42fa1e104940
- SHA1
  
  38283839f1ccd899918d03be5637580f2dc549af
- SHA256
  
  d3c8d40582410409004efacb41fd70460c0d48e8e1d5937dab27b8b44e8bcb45
- SHA512
  
  1c1cb26c678eb079be2be3107bb4239a24221ca93aaddf7744b5db13803ecf928cd4b7d55665f950c2b1c2f347271397f469a1c84836df40bb18682af2ace0ab
- SSDEEP
  
  24576:kVCS+EOon0k78H8txLRByuY5bAJsU2O5sQ:kV3+I78H8jdMuYmsHws
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2